[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

chown replacing setuid bit

From: Clint Adams
Subject: chown replacing setuid bit
Date: Fri, 30 Aug 2002 12:56:04 -0400
User-agent: Mutt/1.4i

src/chown-core.c will replace setuid bits after the syscall has
stripped them.  It is prefaced with a comment:

              /* The change succeeded.  On some systems, the chown function
                 resets the `special' permission bits.  When run by a
                 `privileged' user, this program must ensure that at least
                 the set-uid and set-group ones are still set.  */

This can lead to some unpleasant race conditions.  Please consider
implementing an option to disable the chmod() which does this.
Ideally it would be chown's default behavior.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]